Data Sheet
NETSCREEN-TO-SRX SERIES MIGRATION SERVICE
Service Description The Juniper Networks® NetScreen Series-to-SRX Series Migration Service eases the critical transition for customers migrating from legacy Juniper Networks NetScreen Series Security Systems to Juniper Networks SRX Series Services Gateways. Service Overview This service gives your organization access to a firewall conversion team with Safeguarding against new network extensive knowledge of NetScreen Series and SRX Series deployments. The service and cybersecurity threats requires employs migration process and conversion tools developed using time-tested the latest security features using migration methodologies and automated processes to eliminate errors, enabling you ® a high-scale, high-performance to efficiently migrate to an SRX Series firewall running the Junos operating system firewall. Replacing NetScreen with complete confidence. As part of this service, you have access to the expertise Series Security Systems with SRX of the Juniper Networks Professional Services team, which will help you review, Series Services Gateways protects plan, and migrate your new secure network using SRX Series Services Gateways. organizations while maintaining Rather than just using the customized professional service approach that serves their competitive advantage. When the entire customer base, the NetScreen Series-to-SRX Series Migration Service embarking on a legacy conversion, it offers four different packages—Basic, Plus, Advanced, and Premium—that can is critical that your team understand perform everything from a simple firewall conversion task to a full migration based and be prepared to address typical on specific customer needs, whether a small to medium-sized business, a large conversion and migration challenges enterprise, or a service provider. Packages are fixed price and fixed scope-of-work, that might occur. The NetScreen with a set of predefined firewall quantities to be migrated. Packages also offer Series-to-SRX Series Migration multiple add-on options for incremental firewall quantities to be migrated (with fixed Service uses a proven process and per-firewall pricing). tested technologies to reduce risk The Basic package provides one-to-one NetScreen ScreenOS®-to-SRX Series Junos and accelerate migration to SRX OS configuration file translation by taking the existing customer-supplied ScreenOS Series firewalls. configuration as an input and delivering a translated Junos OS configuration file to be used on the target SRX Series firewall.
The Plus package includes everything offered in the Basic package, plus creates a baseline configuration for the SRX Series firewall and verifies the translated file. The Advanced package adds incremental network implementation capabilities and migration plan assistance, cut-over maintenance window technical assistance, and network documentation for SRX Series firewall post-migration operation.
The Premium package provides comprehensive migration, with a full array of service capabilities. These include a requirements review; low- and high-level design; file translation; file verification; design testing; network acceptance test execution and reporting; network implementation; migration planning and execution; post implementation support; post migration network operations documentation; a knowledge transfer workshop; and Juniper Networks Network and Security Manager-to-Junos Space® planning and migration.
The service also includes a fully customized option that offers an easy progression toward more complex firewall conversion recommendations.
1 NetScreen-to-SRX Series Migration Service
Table 1. NetScreen-to-SRX Series Service Package Comparison
Feature Basic Plus Advanced Premium Custom Requirements Review Document (RRD) Y Y
High-Level Design (HLD) Y Y
Low-Level Design (LLD) Y Y
File Translation Y Y Y Y Y
Base Configuration Creation and File Translation Verification Y Y Y Y
Design Verification Testing (DVT) Y Y
Network Acceptance Test Plan Execution (NATPE) Y Y
Network Acceptance Test Report (NATR) Y Y
NMP Assistance/Network Implementation and Migration Plan (NIMP) Y1 Y Y
Cut-Over and Migration Plan Execution (NIMPE) Y Y
Maintenance Window Technical Assistance/Post-NIMP Execution Support Y2 Y Y
NSM-to-Space/SD Migration Plan Y Y
NSM-to-Space/SD Migration Execution Y Y
Network Operations Documentation (NOD) Y Y Y
Knowledge Transfer Workshop Y Y
1. NMP Assistance only 2. Maintenance Window Technical Assistance Only (up to 8 hrs.)
Table 2. Service Components
Components Description Features and Benefits Requirements Review Document Technical workshop to discuss customer requirements for the project. Clearly identified business and technical requirements (RRD) Juniper will document identified customer requirements into a delivered to customer in conjunction with Juniper requirements matrix (RM) in RRD for customer review and approval. consultant. High-Level Design (HLD) High-level project document delivered to customer. High-level network document showing the position and features of Juniper products. Low-Level Design (LLD) Low-level project document delivered to customer. Low-level document that describes how Juniper products in the target network will be interconnected.
File Translation Partial configuration file translated from NetScreen Security System Leveraged skills and expertise of Juniper Professional ScreenOS to SRX Series Services Gateway Junos OS covering the Services consultant to translate ScreenOS configurations to security-included components delivered to the customer. SRX Series Junos OS configurations.
Base Configuration Creation and Base configuration file for the SRX Series Services Gateway and Verified baseline configuration along with translated files File Translation Verification verification of the translated file delivered to the customer. from ScreenOS to Junos OS for SRX Series devices.
Design Verification Testing (DVT) Testing to validate the design described in the HLD and LLD. Juniper will create a DVT plan based on the LLD deliverable. The test plan will include pass/fail criteria.
Network Acceptance Test Plan Based on the LLD for the project, Juniper will create and document a Network acceptance test plan prepared by Juniper covering (NATP) Network Acceptance Test Plan. all the features agreed to be used in network.
Network Acceptance Test Plan Documentation of test results delivered in an NATP. The NATP will A Juniper consultant will execute tests documented in the Execution (NATPE) be created from the NATP document and updated with the test NATP in conjunction with customer and end user. results.
NMP/Network Implementation Basic Network Migration Plan (NMP) document to aid the customer Easy and error-free approach for migrating from legacy and Migration Plan (NIMP) OR complete NIMP document that will provide a recommended hardware to new Juniper hardware by a professional approach for implementing the Juniper products in the target consultant. network and for the migration(s) from the current hardware to the new hardware/deployment.
Network Implementation and Based on the NIMP, Juniper will work with the customer and end Juniper will assist the customer to ensure a smooth Migration Plan Execution (NIMPE) user to execute the NIMP for the Juniper products. migration and provide technical assistance wherever needed.
Cut-Over Technical Assistance/ Remote technical assistance provided (for one day) to the customer If any issue arises after the migration, a Ju-niper consultant Post-NIMP Execution Support during their scheduled maintenance window while they execute the will provide one day of re-mote help to bring the issue to steps described in the NMP OR full remote support for the customer closure. (for one day) after the execution of the NIMP, to assist in rapid analysis of any issues that may arise following the implementation and migration.
2 NetScreen-to-SRX Series Migration Service
Components Description Features and Benefits NSM to Junos Space with Security Create and validate a plan for migrating the customer’s network Customer will leverage Juniper expertise when moving from Director Migration Plan and security manager (NSM) platform to the Junos Space Security their existing NSM to Junos Space. Director platform.
NSM to Junos Space with Security Based on the NSM to Junos Space with Security Director Migration Juniper will help the customer execute the plan to make Director Migration Execution Plan, Juniper will work with the customer and end user to execute sure migration is successful. the migration plan for the Juniper products.
Network Operations Document The Network Operations Documents (NOD) contains post-migration The customer receives and operational document that guidelines to manage SRX Series Services Gateways from an provides guidelines on how to operate SRX Series firewalls operational point of view. post-migration.
Knowledge Transfer Workshop Juniper will deliver detailed knowledge transfer on the products and The workshop provides detailed information about Juniper (KTW) how they are used in the network. products, along with how they are being used in the network.
Juniper Service and Support About Juniper Networks Juniper ensures operational excellence by optimizing the Juniper Networks brings simplicity to networking with network to maintain required levels of performance, reliability, products, solutions and services that connect the world. and availability. For more details, please visit www.juniper.net/ Through engineering innovation, we remove the constraints us/en/products-services/. and complexities of networking in the cloud era to solve the toughest challenges our customers and partners face daily. At Ordering Information Juniper Networks, we believe that the network is a resource for To order the NetScreen Series-to-SRX Series Migration Service, sharing knowledge and human advancement that changes the or for additional information, please contact your Juniper world. We are committed to imagining groundbreaking ways to Account Manager. deliver automated, scalable and secure networks to move at the speed of business. Exclusion The scope of this service is for migrating from NetScreen Series Security Systems to SRX Series Services Gateways only and does not include separately sold assessment, design, or deployment services. If you require additional services from your Juniper Professional Services consultant, please contact your Juniper Account Manager.
Corporate and Sales Headquarters APAC and EMEA Headquarters Juniper Networks, Inc. Juniper Networks International B.V. 1133 Innovation Way Boeing Avenue 240 Sunnyvale, CA 94089 USA 1119 PZ Schiphol-Rijk Phone: 888.JUNIPER (888.586.4737) Amsterdam, The Netherlands ������� J�NI��� or +1.408.745.2000 Phone: +31.0.207.125.700 �et t�e �pp. www.juniper.net
Copyright 2020 Juniper Networks, Inc. All rights reserved. Juniper Networks, the Juniper Networks logo, Juniper, and Junos are registered trademarks of Juniper Networks, Inc. in the United States and other countries. All other trademarks, service marks, registered marks, or registered service marks are the property of their respective owners. Juniper Networks assumes no responsibility for any inaccuracies in this document. Juniper Networks reserves the right to change, modify, transfer, or otherwise revise this publication without notice.
1000661-004-EN Nov 2020 3